Geeklog 1.8.1

This release ships with jQuery 1.6.3, which fixes a possible XSS in that JavaScript library, which shouldn't have affected Geeklog itself, but may potentially exist in add-ons that make extensive use of jQuery. Geeklog 1.8.1 also fixes two cases of information leakage, where the OAuth consumer key and secret were exposed when enabling the "rootdebug" option (which is off by default). Also, the MS SQL driver was displaying full details of SQL errors by default.

Other changes in this release:

Fixed a regression in Geeklog 1.8.0 that made the [code] and [raw] tags not escape content properly.

Fixed problems with adding or removing items to/from arrays in the Configuration.

The admin's User Editor no longer loses changes when an error occured.

Fixed images not being displayed in the story preview (when editing an existing story).

Plugins can now set $_SCRIPTS in the plugin_getFooter() function.

Fixed some warnings raised by PHP 5.4 (currently in beta).

There were no changes in the database, the themes or the language files in Geeklog 1.8.1 (over 1.8.0), so upgrades should be relatively straighforward.

Next up: We will now concentrate on Geeklog 1.9.0, which will bring some changes in topics, blocks, and the MySQL API that may affect existing plugins. Plugin authors are encouraged to join us on the geeklog-devel mailing list and also to try out the "nightly" tarball for early testing.

[...] Dirk Views: 4 Geeklog 1.8.2 is now available for download. This is a maintenance release that fixes some bugs in Geeklog 1.8.1 , most notably some incompatibilities with MySQL 5.5 and the Twitter OAuth login as well as a few minor issues. [...] [read more]

So if you unpack two Geeklog releases and run this - replacing $OLDVERSION and $NEWVERSION with the proper directory names - you can generate a list of differences between any two Geeklog releases. Note that it skips changes in the PEAR packages.

---
I'm available to customise your themes or plugins for your Geeklog CMS